Fix Jackson databind security issue (#4370)

* fix jackson databind security issue * update groovy sample * fix groovy dep version
2025-12-09 15:06:12 +00:00 · 2019-11-06 10:27:08 +08:00
parent 16ad66759b
commit c4f0b09459
47 changed files with 49 additions and 47 deletions
--- a/samples/client/petstore/java/resttemplate-withXml/build.gradle
+++ b/samples/client/petstore/java/resttemplate-withXml/build.gradle
@@ -97,7 +97,7 @@ if(hasProperty('target') && target == 'android') {
 ext {
    swagger_annotations_version = "1.5.22"
    jackson_version = "2.9.10"
-    jackson_databind_version = "2.9.10"
+    jackson_databind_version = "2.9.10.1"
    jackson_databind_nullable_version = "0.2.0"
    spring_web_version = "4.3.9.RELEASE"
    jodatime_version = "2.9.9"
--- a/samples/client/petstore/java/resttemplate-withXml/pom.xml
+++ b/samples/client/petstore/java/resttemplate-withXml/pom.xml
@@ -268,7 +268,7 @@
        <swagger-annotations-version>1.5.22</swagger-annotations-version>
        <spring-web-version>4.3.9.RELEASE</spring-web-version>
        <jackson-version>2.9.10</jackson-version>
-        <jackson-databind-version>2.9.10</jackson-databind-version>
+        <jackson-databind-version>2.9.10.1</jackson-databind-version>
        <jackson-databind-nullable-version>0.2.0</jackson-databind-nullable-version>
        <jackson-threetenbp-version>2.9.10</jackson-threetenbp-version>
        <maven-plugin-version>1.0.0</maven-plugin-version>